OUR POLICIES

Personal Information

We may collect the following types of personal information:

• Contact Information: Name, email address, phone number, job title, company name, and any other information you voluntarily provide.
• Account Information: Login credentials, account preferences, and other information needed to create and maintain your account.
• Business Information: Information about your business needs, requirements, and challenges that you share with us.

Usage Data

We automatically collect certain information when you visit our website:

• Technical Information: IP address, browser type, device information, operating system, and other technical details.
• Usage Information: Pages visited, time spent on pages, links clicked, and other interactions with our website.
• Cookies and Tracking Technologies: We use cookies and similar technologies to enhance your experience, analyze usage patterns, and deliver personalized content.

We use the information we collect for various purposes, including:

• To provide and maintain our services
• To respond to inquiries or service requests
• To improve our website, products, and services
• To send relevant updates, newsletters, or promotional materials (with your consent)
• To personalize your experience on our website
• To analyze usage patterns and optimize our offerings
• To protect our services and users from fraudulent or harmful activities
• To comply with legal obligations

We will only use your personal information for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason compatible with the original purpose.

At Kodev Global, we take security seriously—especially for financial and treasury institutions. Our comprehensive security approach ensures that your data and systems are protected at all times.

Security Measures We Implement:

• End-to-End Encryption: Ensures secure communication between your systems and our platform.
• Role-Based Access Control (RBAC): Access to sensitive data is restricted to authorized users only.
• Two-Factor Authentication (2FA): Available for administrative and user access where applicable.
• Data Backups: Automated daily backups with secure cloud storage and version control.
• Disaster Recovery Plan: Ensures business continuity with minimal downtime.
• Regular Audits & Penetration Testing: Conducted periodically to identify and fix vulnerabilities.

Compliance:

Our solutions are designed to support regulatory standards such as:

• ISO 27001 (Information Security Management)
• GDPR (EU General Data Protection Regulation)
• SBP / SECP local compliance requirements (Pakistan)

Database Security:

Using Oracle Database for its robust access control, audit trails, encryption, and real-time monitoring features.

While we provide secure infrastructure, we encourage our clients to:

• Maintain strong user credentials
• Limit user permissions appropriately
• Regularly review access logs and configurations
• Keep client-side systems updated with the latest security patches
• Train staff on security best practices and phishing awareness
• Implement proper endpoint protection on all devices accessing our systems

These Terms of Service ("Terms") govern your access to and use of Kodev Global's website, products, and services. By accessing or using our services, you agree to be bound by these Terms.

Acceptance of Terms

By accessing our website or using our services, you acknowledge that you have read, understood, and agree to be bound by these Terms. If you do not agree to these Terms, please do not use our services.

Modifications to Terms

We reserve the right to modify these Terms at any time. We will provide notice of any material changes by posting the updated Terms on our website or through other communications. Your continued use of our services after such changes constitutes your acceptance of the updated Terms.

Authorized Use

You agree to use our services only for lawful purposes and in accordance with these Terms. You are responsible for all activities that occur under your account.

Prohibited Activities

You agree not to:

• Use our services in any way that violates any applicable laws or regulations
• Attempt to gain unauthorized access to any part of our services or systems
• Interfere with or disrupt the integrity or performance of our services
• Attempt to reverse engineer, decompile, or disassemble any portion of our services
• Use our services to transmit any malware, viruses, or other harmful code
• Collect or harvest any information from our services without our consent

Service Availability

We strive to ensure that our services are available at all times, but we do not guarantee uninterrupted access. We reserve the right to suspend or terminate access to our services for maintenance, updates, or other reasons without notice.

Data Storage

We store your data on secure servers with industry-standard encryption and security measures. Our data centers are compliant with relevant security standards and are regularly audited for compliance.

Data Processing

We process your data in accordance with applicable data protection laws, including:

• Processing only the data necessary for the specified purpose
• Ensuring data accuracy and keeping it up to date
• Storing data only for as long as necessary
• Implementing appropriate technical and organizational measures to protect data

Data Retention

We retain your data for as long as necessary to provide our services and fulfill the purposes outlined in our Privacy Policy. We also retain data as required by law or for legitimate business purposes.

Depending on your location, you may have certain rights regarding your personal data, including:

• Right to Access: You can request a copy of the personal data we hold about you.
• Right to Rectification: You can request that we correct any inaccurate or incomplete data.
• Right to Erasure: In certain circumstances, you can request that we delete your personal data.
• Right to Restrict Processing: You can request that we limit how we use your data.
• Right to Data Portability: You can request a copy of your data in a structured, commonly used, and machine-readable format.
• Right to Object: You can object to our processing of your data in certain circumstances.

To exercise any of these rights, please contact us at privacy@kodevglobal.com.

Kodev Global is committed to maintaining compliance with relevant regulatory standards and industry best practices. Our compliance framework includes:

International Standards

• ISO 27001: Information Security Management System certification
• ISO 9001: Quality Management System compliance
• GDPR: EU General Data Protection Regulation compliance
• SOC 2: Service Organization Control 2 compliance for security and availability

Regional Compliance

• SBP Regulations: State Bank of Pakistan compliance for financial services
• SECP Requirements: Securities and Exchange Commission of Pakistan compliance
• PCI DSS: Payment Card Industry Data Security Standard compliance

Industry-Specific Standards

• Banking Standards: Core banking and treasury management compliance
• Fintech Regulations: Digital payment and financial technology compliance
• Data Localization: Compliance with local data residency requirements

Continuous Monitoring

We maintain ongoing compliance through:

• Regular internal audits and assessments
• Third-party compliance audits and certifications
• Continuous monitoring of regulatory changes
• Staff training on compliance requirements
• Documentation and reporting of compliance activities

Client Compliance Support

We help our clients maintain compliance by:

• Providing compliance documentation and reports
• Offering compliance consulting services
• Maintaining audit trails and logs
• Supporting client audit requirements
• Providing compliance training and resources